CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2010-2840

Malware in sbrugna...

7.8CVSS6.2AI score0.00427EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 12:21 p.m.•9 views

CVE-2010-2836

Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service memory consumption by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID...

7.8CVSS6.9AI score0.00427EPSS

Exploits0References1

BDU FSTEC•added 2023/04/20 12:0 a.m.•1 views

The vulnerability of the BIND DNS server arises from improper resource termination or release, which leads to incomplete cleanup. This allows attackers to trigger an attack on the service.

The vulnerability of the BIND DNS server relates to improper termination of resources or resource release, which leads to incomplete cleanup. Exploiting this vulnerability allows a malicious actor to send specially crafted TCP packets with ‘keep-response-order’ enabled. This can result in...

5.3CVSS6.5AI score0.00781EPSS

Exploits0References16Affected Software7

SUSE CVE•added 2023/02/15 3:35 a.m.•3 views

SUSE CVE-2022-0396

BIND 9.16.11 - 9.16.26, 9.17.0 - 9.18.0 and versions 9.16.11-S1 - 9.16.26-S1 of the BIND Supported Preview Edition. Specifically crafted TCP streams can cause connections to BIND to remain in CLOSEWAIT status for an indefinite period of time, even after the client has terminated the connection...

5.3CVSS9.3AI score0.00113EPSS

Exploits0References7

RedHat Linux•added 2022/11/15 1:27 p.m.•2 views

bind: DoS from specifically crafted TCP packets

A flaw was found in Bind that incorrectly handles certain crafted TCP streams. The vulnerability allows TCP connection slots to be consumed for an indefinite time frame via a specifically crafted TCP stream sent from a client. This flaw allows a remote attacker to send specially crafted TCP strea...

5.3CVSS5.8AI score0.00113EPSS

Exploits0References5

RedHat Linux•added 2022/11/08 9:31 a.m.•4 views

bind: DoS from specifically crafted TCP packets

5.3CVSS5.8AI score0.00113EPSS

Exploits0References5

CNNVD•added 2022/09/28 12:0 a.m.•6 views

lighttpd 安全漏洞

lighttpd is an open source web server developed by Jan Kneschke in Germany. A security vulnerability exists in lighttpd that originates from a denial-of-service attack that can be triggered via CLOSEWAIT / CONSTATEREADPOST...

7.5CVSS7.2AI score0.01808EPSS

Exploits4References9

OSV•added 2022/04/16 11:3 a.m.•2 views

OESA-2022-1615 bind security update

BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names to IP addresses; a resolver library routines for applications to use when interfacing with DNS; and tools for verifying that the DNS server ...

6.8CVSS7.1AI score0.00113EPSS

Exploits0References3

OSV•added 2022/03/23 11:15 a.m.•3 views

DEBIAN-CVE-2022-0396

5.3CVSS6.5AI score0.00113EPSS

Exploits0References1

OSV•added 2022/03/23 11:15 a.m.•2 views

ALPINE-CVE-2022-0396

5.3CVSS6.9AI score0.00113EPSS

Exploits0References1

CNNVD•added 2022/03/16 12:0 a.m.•1 views

ISC BIND 资源管理错误漏洞

ISC BIND is a suite of open source software from ISC Corporation that implements the DNS protocol. A resource management error vulnerability exists in ISC BIND, which stems from the fact that a TCP connection with "keep-response-order" enabled may leave the TCP interface in the "CLOSEWAIT " state...

5.3CVSS6.8AI score0.00113EPSS

Exploits0References23

OSV•added 2020/01/31 12:0 a.m.•1 views

UBUNTU-CVE-2020-1700

A flaw was found in the way the Ceph RGW Beast front-end handles unexpected disconnects. An authenticated attacker can abuse this flaw by making multiple disconnect attempts resulting in a permanent leak of a socket connection by radosgw. This flaw could lead to a denial of service condition by...

6.5CVSS7AI score0.0031EPSS

Exploits0References3

OSV•added 2018/11/12 4:29 p.m.•2 views

CVE-2018-1786

IBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSEWAIT state. This can cause TCP/IP resource leakage and may result in a denial of service. IBM X-Force ID: 148871...

7.5CVSS5.8AI score0.00303EPSS

Exploits0References3